CVE-2026-48229 | openises Tickets up to 3.44.1 Request routes_i.php ticket_id cross site scripting

Inserito da Angelo Barbosa | Mag 21, 2026 | CVE

A vulnerability was found in openises Tickets up to 3.44.1. It has been classified as problematic. Affected by this issue is some unknown functionality of the file routes_i.php of the component Request Handler. The manipulation of the argument ticket_id leads to cross site scripting.

This vulnerability is traded as CVE-2026-48229. It is possible to initiate the attack remotely. There is no exploit available.

Upgrading the affected component is recommended.

CVE-2026-48229 | openises Tickets up to 3.44.1 Request routes_i.php ticket_id cross site scripting

Post correlati

CVE-2025-34124 | 3DO Company Heroes of Might and Magic III h3m Map File stack-based overflow (EDB-37716)

CVE-2024-47354 | smp7 Simple Membership After Login Redirection Plugin up to 1.6 on WordPress redirect

CVE-2024-3544 | Progress LoadMaster prior 7.2.48.12/7.2.54.10/7.2.59.4 SSH Private Key hard-coded credentials

CVE-2023-49553 | Cesanta MJS 2.20.0 msj.c mjs_destroy denial of service (Issue 253)